Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
File: PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft (raw, json)
Hash identifier: 0rBuZyHaufBUpinlL3p1Vgd9NANEIYTogLyypB4FapU=
Subject key identifier: 49:9D:94:B0:34:B8:E9:1F:8B:61:FB:91:71:CF:9E:79:89:09:8F:5D
Authority key identifier: 3D:23:75:8D:FB:6F:1D:43:DC:D6:4D:0F:0A:B2:7E:F7:15:13:59:52
Certificate issuer: /CN=3d23758dfb6f1d43dcd64d0f0ab27ef715135952
Certificate serial: 019916BEC7CF184E18BC3487FF4D1952B273
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
Manifest number: 054B
Signing time: Thu 04 Sep 2025 22:00:25 +0000
Manifest this update: Thu 04 Sep 2025 22:00:25 +0000
Manifest next update: Fri 05 Sep 2025 22:00:25 +0000
Files and hashes: 1: PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl (hash: qNBzKe9AwUZFJphxFFlwcGmyurCplkjql5GyGKzPCWI=)
2: cNQzFblAKvFr8hGK7lwE2E-QroQ.roa (hash: 6L0JpdKsg5wIV7DiGvLclmuCfLf4+RgtvQ0jAlVXODk=)
3: sq8t5TnYeFbLwzKDRurrhu8TSwI.roa (hash: BEQOlbgnZNiMmu4zSM6xloAN2ehefN/KrPp5K3vJnWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 22:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:16:be:c7:cf:18:4e:18:bc:34:87:ff:4d:19:52:b2:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d23758dfb6f1d43dcd64d0f0ab27ef715135952
Validity
Not Before: Sep 4 22:00:25 2025 GMT
Not After : Sep 5 22:00:25 2025 GMT
Subject: CN=499d94b034b8e91f8b61fb9171cf9e7989098f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f7:7b:5c:4b:3a:0c:b6:81:2e:d5:18:5a:c1:
7f:e8:2d:38:49:b8:06:24:91:8b:dc:17:f0:bd:93:
c1:fc:a6:57:39:b3:f0:d9:b9:31:89:06:c8:04:ce:
61:2b:7b:25:32:a1:c0:02:27:92:a5:77:de:c6:38:
f0:14:51:d0:a9:17:75:4f:18:7c:5c:f7:31:53:27:
8f:04:8b:b3:4c:4e:ad:5a:15:07:b4:f7:89:c5:d4:
ab:aa:28:f0:da:e6:05:ca:ce:53:0a:4e:21:c6:1c:
21:9f:ea:27:a9:bc:82:d6:72:fc:9b:cb:df:29:cc:
55:10:1a:0d:76:5d:b6:81:a7:07:e2:d1:66:42:69:
96:56:f9:8e:c2:bf:73:b6:a4:74:86:ad:b6:9c:d6:
5a:c7:08:3b:51:ee:72:e4:20:72:de:24:82:79:40:
c3:e4:64:fc:15:c8:5b:e0:4b:63:8c:f9:d4:05:79:
36:5a:4e:27:71:a7:8b:65:5f:0f:76:9a:9d:60:91:
cb:67:f6:c9:f6:33:3c:46:e6:84:53:c3:ca:06:e5:
3b:cf:6e:dd:17:8b:10:6f:68:80:48:71:3f:2d:46:
be:3c:96:ab:81:cc:96:09:05:1f:bc:a3:3a:07:52:
6d:5b:4a:22:de:26:39:9c:fa:ec:4f:68:08:a3:e5:
c5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:9D:94:B0:34:B8:E9:1F:8B:61:FB:91:71:CF:9E:79:89:09:8F:5D
X509v3 Authority Key Identifier:
keyid:3D:23:75:8D:FB:6F:1D:43:DC:D6:4D:0F:0A:B2:7E:F7:15:13:59:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:74:88:84:59:b5:6c:81:fb:97:6c:72:24:04:10:53:9f:56:
a7:47:d7:fc:09:9d:48:19:09:b8:b4:69:73:9b:76:50:1b:a4:
a0:b9:d5:71:b3:84:31:b4:8b:f4:82:48:69:49:7e:4a:a7:c7:
23:44:38:87:09:7d:73:a9:43:ad:59:18:06:42:92:ce:0a:49:
e1:76:87:d6:ac:d5:91:a2:f6:20:a5:51:8d:4a:8e:2b:ab:3d:
2c:0f:2b:ed:4b:7f:b4:a2:fb:ed:b8:a7:a0:ed:11:99:50:10:
60:da:7d:d4:fb:10:2f:74:aa:6b:44:25:64:c4:9b:9c:c5:81:
30:ef:70:7c:09:c5:48:06:4e:13:b7:e9:f3:5a:1c:e4:94:d8:
da:df:31:ee:a9:f9:ff:22:ac:8e:8e:1e:5a:55:bd:d3:76:bb:
79:e3:04:04:04:d8:c4:c0:45:ce:17:8b:c5:f9:12:95:5c:67:
61:81:78:f5:0c:a6:a3:c8:7a:a2:6e:56:c2:f1:3e:fe:77:36:
c2:34:f5:b0:d5:a0:50:f3:a2:68:04:13:b1:5e:6b:65:f6:d9:
d3:72:1e:63:d1:26:8b:c4:4e:ed:86:4f:81:71:b8:08:cc:a0:
ce:03:af:ab:5c:65:31:45:e2:76:6f:87:2f:e4:b7:0c:e6:ac:
0a:4f:45:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 05:52:41 2025 by rpki-client